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IN THE CLAIMS: 

1 -55. (Canceled) 




56. (Currently Amended) A system -feMyste m security in a di stert 
network that includes a security policy server, an identification authority server, a 
revocation authority server, verificatio n authority server, and a user computer , 
comprising: 

a) -ffleafts4k^^ariHg a sta tement oPart-as-signe d r e vocati oft-au 
distributed sys tem-ne twork i^r o spo nge^o^-poy^yT^aid-re v oc a tiot^autt^rit 
b e ing assooi ftted-wkh^n4^i^a^stotenient; 

b) m e ans fo r-prepafmg a module within the identification authority server that, 
pursuant to a long-term policy received from said security policy server and a request 
from said user computer, prepares and sends to said user computer, via a public 
network to which said user computer, identification authority server, revocation 
authority server, and said verification authority server are connected, an identification 
certificate that includes s tatement-^ a freshness constraint peried represented by a time 
duration referenced to time of said request by said user computer in-the 
system n etweric-4^espense^<^^ 

a module within said revocation authority server for storing in a memory 
meaftS-fei^fHFepaBHg a validity statement at-said-as^tgned-reveeatien-au thority i n the 
distributed-system-net-wor-k in response to said a received short-term policy, and for 
updating said validity statement at specified i ntervals, said validity statement including 
a verification status at some temporal reference; 

d) means for providin g, in response to a request initiated bv said user computer. 
said identification certificate r evoGatiOi>authoi4*y^tate^ent^ai 

and said validity statement retrieved from said memory, to said verification authority 
server, via said public network te^^erificatioB-auihorit syst e m 
ftetw^Fk; and 

e) a module within said verification authority server m eans for select i ve 1 y 
verifying that said request is within said time duration and said validity statement 
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permits serving said request by said user computer saidnnitial^tateffleft t at said 
ve^ettftefr^^ri^fi-regpenge- to said in &al-stateraettVsal d revocatio n 
ad-freshnes s stat emen t, and sa id-yaMdKy-stflt^meHt. 



3 



PAGE 5/7 * RCVD AT 1/8/2008 1 :43:35 PM (Eastern Standard Time] * SVR:USPT0-EFXRF4/3 * DNIS:2738300 * CSID:9734676589 * DURATION (mm-ss):02-56 



